
IN THE CLAIMS: 

Please amend claim 1 as follows: 

\ 1. (Currently amended) An information security system comprising: 

\ a plurality of trusted authorities configurable in a rooted hierarchical structure 
including at least one of the trusted authorities being a superior authority and at least one of the 
trusted authorities being subordinate authority; and 

the\ superior authority operative to generate inter trusted authority trust 
modification dat a, policy control message data, to dynamically vary validation starting 
authorities among the subordinate authorities. 

2. (Original) me system of claim 1 wherein at least one of the subordinate 
authorities includes a certificaite issuer operatively responsive to the inter trusted authority 
modification data for issuing certim^ates for at least one subscriber based on the inter trusted 
authority modification data. \ 

3. (Original) The system of\laim 1 wherein at least one of the subordinate 
authorities includes a subscriber trust anchor specifier, operatively responsive to the inter trusted 
authority modification data, that generates trust anchor modification data for a plurality of 
subscribers. \ 

4. (Original) The system of claim 3 wherein\the trust anchor modification data 
includes subordinate trust anchor data representing at least one trust anchor different from a local 
trust authority. \ 

5. (Previously amended) The system of claim 1 whereiii the superior authority 
includes a trust anchor modification data certificate issuer that provides trusr^chor modification 
data as a signed data structure for the subordinate authorities. \ 
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\ 6. (Original) The system of claim 1 wherein the trust anchor modification data 
includesSdata representing at least one of: scope of certification data, subordinate authority cross- 
certification, allowance data, subordinate authority certification rule data, subordinate authority 
password rules^^data, subscriber trust anchor rule data and subscriber password rule data, 
certificate expiry policy, subscriber algorithm policy, and policy control message data. 

7. (Original) The system of claim 1 wherein one of the trusted authorities is a root 
authority. \ 

8. (Original) T^e system of claim 1 including subordinate authority memory 
containing data representing valkiation starting authority data, wherein the data is stored in 
response to receiving the inter trusteX authority trust modification data. 

9. (Previously amended) Aii information security system comprising: 

a plurality of trusted authomies configurable in a rooted hierarchical structure 
including at least one of the trusted authorities^being a superior authority and at least one of the 
trusted authorities being a subordinate authority; \ 

the superior authority operative to generate policy control message data to 
dynamically vary policy control data to facilitate trust authority policy delegation among the 
subordinate authorities wherein the policy control data includes inter trusted authority trust 
modification data to dynamically vary validation starting authorities among the subordinate 
authorities; and \ 

wherein at least one of the subordinate authorities inciiides a certificate issuer 
operatively responsive to the inter trusted authority modification data for\ssuing certificates for 
at least one subscriber based on the inter trusted authority modification data Wd further includes 
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a\subscriber trust anchor specifier, operatively responsive to the inter trusted authority 
modification data, that generates trust anchor modification data for a plurality of subscribers. 

(Original) The system of claim 9 wherein the trust anchor modification data 
includes siibordinate trust anchor data representing at least one trust anchor different fi:om a local 
trust authorit 

11. ((^iginal) The system of claim 10 wherein the superior authority includes a trust 
anchor modificationNdata certificate issuer that provides the trust anchor modification data as a 
signed data structure fondie subordinate authorities. 

12. (Original) The system of claim 9 wherein the trust anchor modification data 
includes data representing at least one of: scope of certification data, subordinate authority cross- 
certification allowance data, subordinate authority certification rule data, subordinate authority 
password rule data, subscriber trusV anchor rule data and subscriber password rule data, 
certificate expiry policy, subscriber algorithm policy, and policy control message data. 

13. (Original) The system of clainj 12 wherein one of the trusted authorities is a root 
authority. 

14. (Original) The system of claim \3 including subordinate authority memory 
containing data representing validation starting autntority data, wherein the data is stored in 
response to receiving the inter trusted authority trust modification data. 

15. (Previously amended) A method for providing^nformation security comprising: 
providing a plurality of trusted authorities configurable in a rooted hierarchical 

structure including at least one of the trusted authorities being a superior authority and at least 
one of the trusted authorities being a subordinate authority; and 
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generating inter trusted authority trust modification data to dynamically vary 
validati^ starting authorities among the subordinate authorities. 

16. \ (Original) The method of claim 15 including issuing certificates for at least one 
subscriber basedson the inter trusted authority modification data. 

17. (Original) The method of claim 15 including generating trust anchor modification 
data for a plurality of subscribers. 

18. (Original) The method of claim 17 wherein the trust anchor modification data 
includes subordinate trust anchorSjata representing at least one trust anchor different firom a local 
trust authority. 

19. (Original) The method 6f claim 15 including the step of providing the trust 
anchor modification data as a signed data structure for the subordinate authorities. 

20. (Original) The method of claim\5 wherein the trust anchor modification data 
includes data representing at least one of: scope of certification data, subordinate authority cross- 
certification allowance data, subordinate authority certification rule data, subordinate authority 
password rule data, subscriber trust anchor rule data and subscriber password rule data, 
certificate expiry policy, subscriber algorithm policy, and policy O£)ntrol message data. 

21. (Original) The method of claim 15 including the step, of storing data representing 
validation starting authority data, in response to receiving the int^^ trusted authority trust 
modification data. 
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